@pymthouse/builder-sdk 0.0.8 → 0.3.0

package/dist/ingest-B3Yi8Tb1.d.cts

@@ -0,0 +1,271 @@
+import { F as FetchLike, S as SignedTicketIngestInput, f as SignedTicketIngestResult } from './types-_R1AwEZp.cjs';
+
+/**
+ * - `pymthouse_hosted`: after sign, POST usage to Builder API (`/usage/signed-tickets`).
+ * - `platform_ingest` / `byo_openmeter`: platform calls ingest explicitly (no auto POST).
+ */
+type SignerMeteringMode = "pymthouse_hosted" | "platform_ingest" | "byo_openmeter";
+declare function resolvesToHostedMetering(mode: SignerMeteringMode | undefined): boolean;
+declare function resolvesToPlatformMetering(mode: SignerMeteringMode | undefined): boolean;
+type SignerDmzGate = "http" | "cli";
+interface SignerMeteringConfig {
+    mode: SignerMeteringMode;
+    openMeterBaseUrl?: string;
+    openMeterApiKey?: string;
+    meterSlug?: string;
+    featureKey?: string;
+}
+interface DirectSignerProxyConfig {
+    pymthouseIssuerUrl: string;
+    /** Public Builder app client id (`app_…`); used for cache keys and JWT `client_id`. */
+    pymthouseClientId: string;
+    pymthouseM2MClientId: string;
+    pymthouseM2MClientSecret: string;
+    remoteSignerUrl: string | URL;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+    /**
+     * When set, incoming request paths matching this prefix are rewritten to the remote signer base.
+     * Example: `/api/signer/proxy` → remote `/generate-live-payment` when the suffix is empty.
+     */
+    proxyPathPrefix?: string;
+    /** Remote path used when the proxied suffix is empty. Defaults to `/generate-live-payment`. */
+    defaultRemotePath?: string;
+    metering?: SignerMeteringConfig;
+    authenticate: (request: Request) => Promise<unknown>;
+    resolveExternalUserId: (session: unknown) => Promise<string>;
+    beforeSign?: (context: DirectSignerBeforeSignContext) => Promise<DirectSignerBeforeSignResult | void>;
+}
+interface CachedSignerToken {
+    jwt: string;
+    expiresAt: number;
+    refreshAt: number;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+}
+interface DirectSignerBeforeSignContext {
+    token: CachedSignerToken;
+    externalUserId: string;
+    request: Request;
+}
+type DirectSignerBeforeSignResult = Response | {
+    status: number;
+    body?: unknown;
+};
+interface MintUserSignerTokenOptions {
+    issuerUrl: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    externalUserId: string;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+}
+interface MintUserSignerTokenResponse {
+    access_token: string;
+    expires_in: number;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+}
+interface SignerTokenManagerOptions {
+    publicClientId: string;
+    mint: (externalUserId: string) => Promise<CachedSignerToken>;
+    /** Fraction of TTL after which a proactive refresh runs. Defaults to `0.8`. */
+    ttlRefreshRatio?: number;
+    fetch?: FetchLike;
+}
+interface ForwardDirectSignerRequestOptions {
+    request: Request;
+    remoteSignerUrl: string | URL;
+    jwt: string;
+    proxyPathPrefix?: string;
+    defaultRemotePath?: string;
+    fetch?: FetchLike;
+}
+interface ForwardToSignerOptions {
+    baseUrl: string;
+    path: string;
+    method: string;
+    body?: unknown;
+    subject: string;
+    getDmzToken: (subject: string, gate: SignerDmzGate) => Promise<string>;
+    forwardJwt?: boolean;
+    /** Merged after Authorization; used for go-livepeer trusted_headers identity. */
+    extraHeaders?: Record<string, string>;
+    timeoutMs?: number;
+    fetch?: FetchLike;
+}
+interface ForwardToSignerResult {
+    response: Response;
+    requestUrl: string;
+    authorizationHeader?: string;
+}
+interface ProbeSignerHttpReachabilityOptions {
+    signerUrl: string;
+    getDmzToken: (subject: string, gate: SignerDmzGate) => Promise<string>;
+    probeSubject?: string;
+    timeoutMs?: number;
+    forwardJwt?: boolean;
+    fetch?: FetchLike;
+}
+interface SignerJwtIdentity {
+    issuer: string;
+    clientId: string;
+    usageSubject: string;
+    usageSubjectType: string;
+}
+interface DeviceExchangeRequestBody {
+    deviceToken: string;
+    scope?: string;
+    clientId?: string;
+}
+interface DeviceExchangeResponse {
+    access_token: string;
+    token_type: "Bearer";
+    expires_in: number;
+    scope: string;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+    /** Public signer DMZ base URL clients should call directly (no trailing slash). */
+    signerUrl?: string;
+    token?: {
+        accessToken: string;
+        access_token: string;
+        expiresIn: number;
+        expires_in: number;
+        scope: string;
+        balanceUsdMicros: string;
+        lifetimeGrantedUsdMicros: string;
+    };
+}
+interface ExchangeDeviceTokenForSignerOptions {
+    facadeUrl: string;
+    deviceToken: string;
+    scope?: string;
+    clientId?: string;
+    fetch?: FetchLike;
+}
+interface MintSignerTokenFromDeviceTokenOptions {
+    issuerUrl: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    deviceToken: string;
+    scope?: string;
+    audience?: string;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+}
+interface DeviceExchangeMintContext {
+    scope?: string;
+    clientId?: string;
+}
+interface DeviceExchangeMintResult {
+    access_token: string;
+    expires_in: number;
+    scope: string;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+}
+interface DeviceExchangeHandlerConfig {
+    mint: (deviceToken: string, context: DeviceExchangeMintContext) => Promise<DeviceExchangeMintResult>;
+    /** Resolved signer DMZ base URL included in the exchange response. */
+    getSignerUrl?: () => string | Promise<string>;
+    signerUrl?: string;
+}
+interface DeviceExchangeHandlerConfigRemote extends Omit<MintSignerTokenFromDeviceTokenOptions, "deviceToken"> {
+    mint?: never;
+    getSignerUrl?: () => string | Promise<string>;
+    signerUrl?: string;
+}
+interface ApiKeyExchangeRequestBody {
+    apiKey: string;
+    scope?: string;
+    clientId?: string;
+}
+type ApiKeyExchangeMintResult = DeviceExchangeMintResult;
+interface ApiKeyExchangeHandlerConfig {
+    issuerUrl: string;
+    publicClientId: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    signerUrl?: string;
+    audience?: string;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+}
+interface ExchangeApiKeyForSignerOptions {
+    facadeUrl: string;
+    apiKey: string;
+    scope?: string;
+    clientId?: string;
+    fetch?: FetchLike;
+}
+
+type SignerUsageSnapshot = {
+    requestId: string;
+    computedFeeWei: string;
+    computedFeeUsdMicros: bigint;
+    ethUsdPrice?: string;
+    ethUsdRoundId?: string;
+    ethUsdObservedAt?: string;
+    pixels?: string;
+    billableSecs?: string;
+    pipeline?: string;
+    modelId?: string;
+};
+declare function normalizeSignerBaseUrl(base: string): string;
+declare function resolveSignerBaseUrl(input: {
+    envUrl?: string | null;
+    storedUrl?: string | null;
+    storedPort?: number | null;
+    testSignerUrl?: string | null;
+    defaultPort?: number;
+}): string;
+declare function getCachedDmzBearerToken(subject: string, gate: SignerDmzGate, getDmzToken: (subject: string, gate: SignerDmzGate) => Promise<string>): Promise<string>;
+declare function readSignerUpstreamBody(response: Response): Promise<unknown>;
+declare function pickConflictingStringAliases(body: Record<string, unknown>, ...keys: string[]): {
+    ok: true;
+    value: string | undefined;
+} | {
+    ok: false;
+    message: string;
+};
+declare function pickConflictingNumberAliases(body: Record<string, unknown>, ...keys: string[]): {
+    ok: true;
+    value: number | undefined;
+} | {
+    ok: false;
+    message: string;
+};
+declare function parseSignerUsageSnapshot(body: unknown): SignerUsageSnapshot | null;
+declare function stripSignerUsageFromResponse(body: unknown): void;
+declare function forwardToSigner(options: ForwardToSignerOptions): Promise<ForwardToSignerResult>;
+declare function probeSignerHttpReachability(options: ProbeSignerHttpReachabilityOptions): Promise<{
+    reachable: boolean;
+    ethAddress?: string;
+}>;
+
+type IngestSignedTicketOptions = {
+    issuerUrl: string;
+    publicClientId: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    ticket: SignedTicketIngestInput;
+    fetch?: FetchLike;
+};
+type IngestSignedTicketsBatchOptions = Omit<IngestSignedTicketOptions, "ticket"> & {
+    tickets: SignedTicketIngestInput[];
+};
+declare function signerSnapshotToIngestPayload(input: {
+    snapshot: SignerUsageSnapshot;
+    externalUserId: string;
+    gatewayRequestId?: string;
+}): SignedTicketIngestInput;
+declare function ingestSignedTicket(options: IngestSignedTicketOptions): Promise<SignedTicketIngestResult>;
+declare function ingestSignedTicketsBatch(options: IngestSignedTicketsBatchOptions): Promise<{
+    results: Array<SignedTicketIngestResult & {
+        requestId?: string;
+        ok?: boolean;
+    }>;
+}>;
+
+export { type ApiKeyExchangeHandlerConfig as A, parseSignerUsageSnapshot as B, type CachedSignerToken as C, type DeviceExchangeHandlerConfig as D, type ExchangeDeviceTokenForSignerOptions as E, type ForwardDirectSignerRequestOptions as F, pickConflictingNumberAliases as G, pickConflictingStringAliases as H, probeSignerHttpReachability as I, readSignerUpstreamBody as J, resolveSignerBaseUrl as K, resolvesToHostedMetering as L, type MintUserSignerTokenOptions as M, resolvesToPlatformMetering as N, stripSignerUsageFromResponse as O, type ProbeSignerHttpReachabilityOptions as P, type SignerTokenManagerOptions as S, ingestSignedTicketsBatch as a, type SignerJwtIdentity as b, type DeviceExchangeHandlerConfigRemote as c, type DeviceExchangeResponse as d, type MintSignerTokenFromDeviceTokenOptions as e, type DeviceExchangeMintResult as f, type DeviceExchangeRequestBody as g, type ExchangeApiKeyForSignerOptions as h, ingestSignedTicket as i, type ApiKeyExchangeMintResult as j, type ApiKeyExchangeRequestBody as k, type DirectSignerProxyConfig as l, type DeviceExchangeMintContext as m, type DirectSignerBeforeSignContext as n, type DirectSignerBeforeSignResult as o, type ForwardToSignerOptions as p, type ForwardToSignerResult as q, type MintUserSignerTokenResponse as r, signerSnapshotToIngestPayload as s, type SignerDmzGate as t, type SignerMeteringConfig as u, type SignerMeteringMode as v, type SignerUsageSnapshot as w, forwardToSigner as x, getCachedDmzBearerToken as y, normalizeSignerBaseUrl as z };

package/dist/ingest-DoKJTWU9.d.ts

@@ -0,0 +1,271 @@
+import { F as FetchLike, S as SignedTicketIngestInput, f as SignedTicketIngestResult } from './types-_R1AwEZp.js';
+
+/**
+ * - `pymthouse_hosted`: after sign, POST usage to Builder API (`/usage/signed-tickets`).
+ * - `platform_ingest` / `byo_openmeter`: platform calls ingest explicitly (no auto POST).
+ */
+type SignerMeteringMode = "pymthouse_hosted" | "platform_ingest" | "byo_openmeter";
+declare function resolvesToHostedMetering(mode: SignerMeteringMode | undefined): boolean;
+declare function resolvesToPlatformMetering(mode: SignerMeteringMode | undefined): boolean;
+type SignerDmzGate = "http" | "cli";
+interface SignerMeteringConfig {
+    mode: SignerMeteringMode;
+    openMeterBaseUrl?: string;
+    openMeterApiKey?: string;
+    meterSlug?: string;
+    featureKey?: string;
+}
+interface DirectSignerProxyConfig {
+    pymthouseIssuerUrl: string;
+    /** Public Builder app client id (`app_…`); used for cache keys and JWT `client_id`. */
+    pymthouseClientId: string;
+    pymthouseM2MClientId: string;
+    pymthouseM2MClientSecret: string;
+    remoteSignerUrl: string | URL;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+    /**
+     * When set, incoming request paths matching this prefix are rewritten to the remote signer base.
+     * Example: `/api/signer/proxy` → remote `/generate-live-payment` when the suffix is empty.
+     */
+    proxyPathPrefix?: string;
+    /** Remote path used when the proxied suffix is empty. Defaults to `/generate-live-payment`. */
+    defaultRemotePath?: string;
+    metering?: SignerMeteringConfig;
+    authenticate: (request: Request) => Promise<unknown>;
+    resolveExternalUserId: (session: unknown) => Promise<string>;
+    beforeSign?: (context: DirectSignerBeforeSignContext) => Promise<DirectSignerBeforeSignResult | void>;
+}
+interface CachedSignerToken {
+    jwt: string;
+    expiresAt: number;
+    refreshAt: number;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+}
+interface DirectSignerBeforeSignContext {
+    token: CachedSignerToken;
+    externalUserId: string;
+    request: Request;
+}
+type DirectSignerBeforeSignResult = Response | {
+    status: number;
+    body?: unknown;
+};
+interface MintUserSignerTokenOptions {
+    issuerUrl: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    externalUserId: string;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+}
+interface MintUserSignerTokenResponse {
+    access_token: string;
+    expires_in: number;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+}
+interface SignerTokenManagerOptions {
+    publicClientId: string;
+    mint: (externalUserId: string) => Promise<CachedSignerToken>;
+    /** Fraction of TTL after which a proactive refresh runs. Defaults to `0.8`. */
+    ttlRefreshRatio?: number;
+    fetch?: FetchLike;
+}
+interface ForwardDirectSignerRequestOptions {
+    request: Request;
+    remoteSignerUrl: string | URL;
+    jwt: string;
+    proxyPathPrefix?: string;
+    defaultRemotePath?: string;
+    fetch?: FetchLike;
+}
+interface ForwardToSignerOptions {
+    baseUrl: string;
+    path: string;
+    method: string;
+    body?: unknown;
+    subject: string;
+    getDmzToken: (subject: string, gate: SignerDmzGate) => Promise<string>;
+    forwardJwt?: boolean;
+    /** Merged after Authorization; used for go-livepeer trusted_headers identity. */
+    extraHeaders?: Record<string, string>;
+    timeoutMs?: number;
+    fetch?: FetchLike;
+}
+interface ForwardToSignerResult {
+    response: Response;
+    requestUrl: string;
+    authorizationHeader?: string;
+}
+interface ProbeSignerHttpReachabilityOptions {
+    signerUrl: string;
+    getDmzToken: (subject: string, gate: SignerDmzGate) => Promise<string>;
+    probeSubject?: string;
+    timeoutMs?: number;
+    forwardJwt?: boolean;
+    fetch?: FetchLike;
+}
+interface SignerJwtIdentity {
+    issuer: string;
+    clientId: string;
+    usageSubject: string;
+    usageSubjectType: string;
+}
+interface DeviceExchangeRequestBody {
+    deviceToken: string;
+    scope?: string;
+    clientId?: string;
+}
+interface DeviceExchangeResponse {
+    access_token: string;
+    token_type: "Bearer";
+    expires_in: number;
+    scope: string;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+    /** Public signer DMZ base URL clients should call directly (no trailing slash). */
+    signerUrl?: string;
+    token?: {
+        accessToken: string;
+        access_token: string;
+        expiresIn: number;
+        expires_in: number;
+        scope: string;
+        balanceUsdMicros: string;
+        lifetimeGrantedUsdMicros: string;
+    };
+}
+interface ExchangeDeviceTokenForSignerOptions {
+    facadeUrl: string;
+    deviceToken: string;
+    scope?: string;
+    clientId?: string;
+    fetch?: FetchLike;
+}
+interface MintSignerTokenFromDeviceTokenOptions {
+    issuerUrl: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    deviceToken: string;
+    scope?: string;
+    audience?: string;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+}
+interface DeviceExchangeMintContext {
+    scope?: string;
+    clientId?: string;
+}
+interface DeviceExchangeMintResult {
+    access_token: string;
+    expires_in: number;
+    scope: string;
+    balanceUsdMicros: string;
+    lifetimeGrantedUsdMicros: string;
+}
+interface DeviceExchangeHandlerConfig {
+    mint: (deviceToken: string, context: DeviceExchangeMintContext) => Promise<DeviceExchangeMintResult>;
+    /** Resolved signer DMZ base URL included in the exchange response. */
+    getSignerUrl?: () => string | Promise<string>;
+    signerUrl?: string;
+}
+interface DeviceExchangeHandlerConfigRemote extends Omit<MintSignerTokenFromDeviceTokenOptions, "deviceToken"> {
+    mint?: never;
+    getSignerUrl?: () => string | Promise<string>;
+    signerUrl?: string;
+}
+interface ApiKeyExchangeRequestBody {
+    apiKey: string;
+    scope?: string;
+    clientId?: string;
+}
+type ApiKeyExchangeMintResult = DeviceExchangeMintResult;
+interface ApiKeyExchangeHandlerConfig {
+    issuerUrl: string;
+    publicClientId: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    signerUrl?: string;
+    audience?: string;
+    fetch?: FetchLike;
+    allowInsecureHttp?: boolean;
+}
+interface ExchangeApiKeyForSignerOptions {
+    facadeUrl: string;
+    apiKey: string;
+    scope?: string;
+    clientId?: string;
+    fetch?: FetchLike;
+}
+
+type SignerUsageSnapshot = {
+    requestId: string;
+    computedFeeWei: string;
+    computedFeeUsdMicros: bigint;
+    ethUsdPrice?: string;
+    ethUsdRoundId?: string;
+    ethUsdObservedAt?: string;
+    pixels?: string;
+    billableSecs?: string;
+    pipeline?: string;
+    modelId?: string;
+};
+declare function normalizeSignerBaseUrl(base: string): string;
+declare function resolveSignerBaseUrl(input: {
+    envUrl?: string | null;
+    storedUrl?: string | null;
+    storedPort?: number | null;
+    testSignerUrl?: string | null;
+    defaultPort?: number;
+}): string;
+declare function getCachedDmzBearerToken(subject: string, gate: SignerDmzGate, getDmzToken: (subject: string, gate: SignerDmzGate) => Promise<string>): Promise<string>;
+declare function readSignerUpstreamBody(response: Response): Promise<unknown>;
+declare function pickConflictingStringAliases(body: Record<string, unknown>, ...keys: string[]): {
+    ok: true;
+    value: string | undefined;
+} | {
+    ok: false;
+    message: string;
+};
+declare function pickConflictingNumberAliases(body: Record<string, unknown>, ...keys: string[]): {
+    ok: true;
+    value: number | undefined;
+} | {
+    ok: false;
+    message: string;
+};
+declare function parseSignerUsageSnapshot(body: unknown): SignerUsageSnapshot | null;
+declare function stripSignerUsageFromResponse(body: unknown): void;
+declare function forwardToSigner(options: ForwardToSignerOptions): Promise<ForwardToSignerResult>;
+declare function probeSignerHttpReachability(options: ProbeSignerHttpReachabilityOptions): Promise<{
+    reachable: boolean;
+    ethAddress?: string;
+}>;
+
+type IngestSignedTicketOptions = {
+    issuerUrl: string;
+    publicClientId: string;
+    m2mClientId: string;
+    m2mClientSecret: string;
+    ticket: SignedTicketIngestInput;
+    fetch?: FetchLike;
+};
+type IngestSignedTicketsBatchOptions = Omit<IngestSignedTicketOptions, "ticket"> & {
+    tickets: SignedTicketIngestInput[];
+};
+declare function signerSnapshotToIngestPayload(input: {
+    snapshot: SignerUsageSnapshot;
+    externalUserId: string;
+    gatewayRequestId?: string;
+}): SignedTicketIngestInput;
+declare function ingestSignedTicket(options: IngestSignedTicketOptions): Promise<SignedTicketIngestResult>;
+declare function ingestSignedTicketsBatch(options: IngestSignedTicketsBatchOptions): Promise<{
+    results: Array<SignedTicketIngestResult & {
+        requestId?: string;
+        ok?: boolean;
+    }>;
+}>;
+
+export { type ApiKeyExchangeHandlerConfig as A, parseSignerUsageSnapshot as B, type CachedSignerToken as C, type DeviceExchangeHandlerConfig as D, type ExchangeDeviceTokenForSignerOptions as E, type ForwardDirectSignerRequestOptions as F, pickConflictingNumberAliases as G, pickConflictingStringAliases as H, probeSignerHttpReachability as I, readSignerUpstreamBody as J, resolveSignerBaseUrl as K, resolvesToHostedMetering as L, type MintUserSignerTokenOptions as M, resolvesToPlatformMetering as N, stripSignerUsageFromResponse as O, type ProbeSignerHttpReachabilityOptions as P, type SignerTokenManagerOptions as S, ingestSignedTicketsBatch as a, type SignerJwtIdentity as b, type DeviceExchangeHandlerConfigRemote as c, type DeviceExchangeResponse as d, type MintSignerTokenFromDeviceTokenOptions as e, type DeviceExchangeMintResult as f, type DeviceExchangeRequestBody as g, type ExchangeApiKeyForSignerOptions as h, ingestSignedTicket as i, type ApiKeyExchangeMintResult as j, type ApiKeyExchangeRequestBody as k, type DirectSignerProxyConfig as l, type DeviceExchangeMintContext as m, type DirectSignerBeforeSignContext as n, type DirectSignerBeforeSignResult as o, type ForwardToSignerOptions as p, type ForwardToSignerResult as q, type MintUserSignerTokenResponse as r, signerSnapshotToIngestPayload as s, type SignerDmzGate as t, type SignerMeteringConfig as u, type SignerMeteringMode as v, type SignerUsageSnapshot as w, forwardToSigner as x, getCachedDmzBearerToken as y, normalizeSignerBaseUrl as z };

package/dist/plan-pricing.cjs

@@ -0,0 +1,108 @@
+'use strict';
+
+// src/plan-pricing.ts
+var NETWORK_USD_PER_MICRO = 1e-6;
+var RETAIL_RATE_DECIMALS = 9;
+function trimFixedDecimalZeros(fixed) {
+  const dotIndex = fixed.indexOf(".");
+  if (dotIndex === -1) {
+    return fixed;
+  }
+  let end = fixed.length;
+  while (end > dotIndex + 1 && fixed[end - 1] === "0") {
+    end -= 1;
+  }
+  if (end === dotIndex + 1) {
+    end = dotIndex;
+  }
+  const trimmed = fixed.slice(0, end);
+  return trimmed.length > 0 ? trimmed : "0";
+}
+function defaultRetailRateUsd() {
+  return formatRetailRateUsd(NETWORK_USD_PER_MICRO);
+}
+function formatRetailRateUsd(value) {
+  if (!Number.isFinite(value) || value < 0) {
+    return defaultRetailRateUsd();
+  }
+  return trimFixedDecimalZeros(value.toFixed(RETAIL_RATE_DECIMALS));
+}
+function parseRetailRateUsd(raw) {
+  if (raw === null || raw === void 0) {
+    return null;
+  }
+  const trimmed = String(raw).trim();
+  if (!trimmed) {
+    return null;
+  }
+  const n = Number(trimmed);
+  if (!Number.isFinite(n) || n < 0) {
+    return null;
+  }
+  return formatRetailRateUsd(n);
+}
+function markupPercentToRetailRateUsd(markupPercent) {
+  const pct = Number.isFinite(markupPercent) ? Math.max(0, markupPercent) : 0;
+  return formatRetailRateUsd(NETWORK_USD_PER_MICRO * (1 + pct / 100));
+}
+function retailRateUsdToMarkupPercent(raw) {
+  const rate = parseRetailRateUsd(raw);
+  if (!rate) {
+    return "";
+  }
+  const n = Number(rate);
+  if (!Number.isFinite(n) || n <= NETWORK_USD_PER_MICRO) {
+    return n === NETWORK_USD_PER_MICRO ? "0" : "";
+  }
+  const pct = (n / NETWORK_USD_PER_MICRO - 1) * 100;
+  if (!Number.isFinite(pct) || pct <= 0) {
+    return "";
+  }
+  return pct % 1 === 0 ? String(Math.round(pct)) : pct.toFixed(1);
+}
+function retailRateUsdPerMillion(raw) {
+  const rate = parseRetailRateUsd(raw);
+  if (!rate) {
+    return "";
+  }
+  const perM = Number(rate) * 1e6;
+  if (!Number.isFinite(perM)) {
+    return "";
+  }
+  return perM.toFixed(2);
+}
+function parseMarkupPercentInput(raw) {
+  const trimmed = raw.trim();
+  if (!trimmed) {
+    return null;
+  }
+  const n = Number(trimmed);
+  if (!Number.isFinite(n) || n < 0) {
+    return null;
+  }
+  return n;
+}
+function applyRetailRateToNetworkMicros(networkFeeUsdMicros, retailRateUsd) {
+  const networkPerMicro = NETWORK_USD_PER_MICRO;
+  const retail = Number(retailRateUsd);
+  if (!Number.isFinite(retail) || retail <= 0) {
+    return networkFeeUsdMicros;
+  }
+  const ratio = retail / networkPerMicro;
+  if (!Number.isFinite(ratio) || ratio <= 0) {
+    return networkFeeUsdMicros;
+  }
+  return networkFeeUsdMicros * BigInt(Math.round(ratio * 1e6)) / 1000000n;
+}
+
+exports.NETWORK_USD_PER_MICRO = NETWORK_USD_PER_MICRO;
+exports.applyRetailRateToNetworkMicros = applyRetailRateToNetworkMicros;
+exports.defaultRetailRateUsd = defaultRetailRateUsd;
+exports.formatRetailRateUsd = formatRetailRateUsd;
+exports.markupPercentToRetailRateUsd = markupPercentToRetailRateUsd;
+exports.parseMarkupPercentInput = parseMarkupPercentInput;
+exports.parseRetailRateUsd = parseRetailRateUsd;
+exports.retailRateUsdPerMillion = retailRateUsdPerMillion;
+exports.retailRateUsdToMarkupPercent = retailRateUsdToMarkupPercent;
+//# sourceMappingURL=plan-pricing.cjs.map
+//# sourceMappingURL=plan-pricing.cjs.map

package/dist/plan-pricing.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/plan-pricing.ts"],"names":[],"mappings":";;;AACO,IAAM,qBAAA,GAAwB;AAErC,IAAM,oBAAA,GAAuB,CAAA;AAG7B,SAAS,sBAAsB,KAAA,EAAuB;AACpD,EAAA,MAAM,QAAA,GAAW,KAAA,CAAM,OAAA,CAAQ,GAAG,CAAA;AAClC,EAAA,IAAI,aAAa,EAAA,EAAI;AACnB,IAAA,OAAO,KAAA;AAAA,EACT;AACA,EAAA,IAAI,MAAM,KAAA,CAAM,MAAA;AAChB,EAAA,OAAO,MAAM,QAAA,GAAW,CAAA,IAAK,MAAM,GAAA,GAAM,CAAC,MAAM,GAAA,EAAK;AACnD,IAAA,GAAA,IAAO,CAAA;AAAA,EACT;AACA,EAAA,IAAI,GAAA,KAAQ,WAAW,CAAA,EAAG;AACxB,IAAA,GAAA,GAAM,QAAA;AAAA,EACR;AACA,EAAA,MAAM,OAAA,GAAU,KAAA,CAAM,KAAA,CAAM,CAAA,EAAG,GAAG,CAAA;AAClC,EAAA,OAAO,OAAA,CAAQ,MAAA,GAAS,CAAA,GAAI,OAAA,GAAU,GAAA;AACxC;AAEO,SAAS,oBAAA,GAA+B;AAC7C,EAAA,OAAO,oBAAoB,qBAAqB,CAAA;AAClD;AAEO,SAAS,oBAAoB,KAAA,EAAuB;AACzD,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,KAAK,CAAA,IAAK,QAAQ,CAAA,EAAG;AACxC,IAAA,OAAO,oBAAA,EAAqB;AAAA,EAC9B;AACA,EAAA,OAAO,qBAAA,CAAsB,KAAA,CAAM,OAAA,CAAQ,oBAAoB,CAAC,CAAA;AAClE;AAEO,SAAS,mBAAmB,GAAA,EAA+C;AAChF,EAAA,IAAI,GAAA,KAAQ,IAAA,IAAQ,GAAA,KAAQ,MAAA,EAAW;AACrC,IAAA,OAAO,IAAA;AAAA,EACT;AACA,EAAA,MAAM,OAAA,GAAU,MAAA,CAAO,GAAG,CAAA,CAAE,IAAA,EAAK;AACjC,EAAA,IAAI,CAAC,OAAA,EAAS;AACZ,IAAA,OAAO,IAAA;AAAA,EACT;AACA,EAAA,MAAM,CAAA,GAAI,OAAO,OAAO,CAAA;AACxB,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,IAAK,IAAI,CAAA,EAAG;AAChC,IAAA,OAAO,IAAA;AAAA,EACT;AACA,EAAA,OAAO,oBAAoB,CAAC,CAAA;AAC9B;AAGO,SAAS,6BAA6B,aAAA,EAA+B;AAC1E,EAAA,MAAM,GAAA,GAAM,OAAO,QAAA,CAAS,aAAa,IAAI,IAAA,CAAK,GAAA,CAAI,CAAA,EAAG,aAAa,CAAA,GAAI,CAAA;AAC1E,EAAA,OAAO,mBAAA,CAAoB,qBAAA,IAAyB,CAAA,GAAI,GAAA,GAAM,GAAA,CAAI,CAAA;AACpE;AAGO,SAAS,6BAA6B,GAAA,EAAwC;AACnF,EAAA,MAAM,IAAA,GAAO,mBAAmB,GAAG,CAAA;AACnC,EAAA,IAAI,CAAC,IAAA,EAAM;AACT,IAAA,OAAO,EAAA;AAAA,EACT;AACA,EAAA,MAAM,CAAA,GAAI,OAAO,IAAI,CAAA;AACrB,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,IAAK,KAAK,qBAAA,EAAuB;AACrD,IAAA,OAAO,CAAA,KAAM,wBAAwB,GAAA,GAAM,EAAA;AAAA,EAC7C;AACA,EAAA,MAAM,GAAA,GAAA,CAAO,CAAA,GAAI,qBAAA,GAAwB,CAAA,IAAK,GAAA;AAC9C,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,GAAG,CAAA,IAAK,OAAO,CAAA,EAAG;AACrC,IAAA,OAAO,EAAA;AAAA,EACT;AACA,EAAA,OAAO,GAAA,GAAM,CAAA,KAAM,CAAA,GAAI,MAAA,CAAO,IAAA,CAAK,KAAA,CAAM,GAAG,CAAC,CAAA,GAAI,GAAA,CAAI,OAAA,CAAQ,CAAC,CAAA;AAChE;AAEO,SAAS,wBAAwB,GAAA,EAAwC;AAC9E,EAAA,MAAM,IAAA,GAAO,mBAAmB,GAAG,CAAA;AACnC,EAAA,IAAI,CAAC,IAAA,EAAM;AACT,IAAA,OAAO,EAAA;AAAA,EACT;AACA,EAAA,MAAM,IAAA,GAAO,MAAA,CAAO,IAAI,CAAA,GAAI,GAAA;AAC5B,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,IAAI,CAAA,EAAG;AAC1B,IAAA,OAAO,EAAA;AAAA,EACT;AACA,EAAA,OAAO,IAAA,CAAK,QAAQ,CAAC,CAAA;AACvB;AAEO,SAAS,wBAAwB,GAAA,EAA4B;AAClE,EAAA,MAAM,OAAA,GAAU,IAAI,IAAA,EAAK;AACzB,EAAA,IAAI,CAAC,OAAA,EAAS;AACZ,IAAA,OAAO,IAAA;AAAA,EACT;AACA,EAAA,MAAM,CAAA,GAAI,OAAO,OAAO,CAAA;AACxB,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,IAAK,IAAI,CAAA,EAAG;AAChC,IAAA,OAAO,IAAA;AAAA,EACT;AACA,EAAA,OAAO,CAAA;AACT;AAGO,SAAS,8BAAA,CACd,qBACA,aAAA,EACQ;AACR,EAAA,MAAM,eAAA,GAAkB,qBAAA;AACxB,EAAA,MAAM,MAAA,GAAS,OAAO,aAAa,CAAA;AACnC,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,MAAM,CAAA,IAAK,UAAU,CAAA,EAAG;AAC3C,IAAA,OAAO,mBAAA;AAAA,EACT;AACA,EAAA,MAAM,QAAQ,MAAA,GAAS,eAAA;AACvB,EAAA,IAAI,CAAC,MAAA,CAAO,QAAA,CAAS,KAAK,CAAA,IAAK,SAAS,CAAA,EAAG;AACzC,IAAA,OAAO,mBAAA;AAAA,EACT;AACA,EAAA,OAAQ,sBAAsB,MAAA,CAAO,IAAA,CAAK,MAAM,KAAA,GAAQ,GAAS,CAAC,CAAA,GAAK,QAAA;AACzE","file":"plan-pricing.cjs","sourcesContent":["/** Network cost pass-through: $1 retail per $1M of network USD-micros metered. */\nexport const NETWORK_USD_PER_MICRO = 0.000001;\n\nconst RETAIL_RATE_DECIMALS = 9;\n\n/** Strip trailing fractional zeros without regex (avoids ReDoS on user-facing inputs). */\nfunction trimFixedDecimalZeros(fixed: string): string {\n  const dotIndex = fixed.indexOf(\".\");\n  if (dotIndex === -1) {\n    return fixed;\n  }\n  let end = fixed.length;\n  while (end > dotIndex + 1 && fixed[end - 1] === \"0\") {\n    end -= 1;\n  }\n  if (end === dotIndex + 1) {\n    end = dotIndex;\n  }\n  const trimmed = fixed.slice(0, end);\n  return trimmed.length > 0 ? trimmed : \"0\";\n}\n\nexport function defaultRetailRateUsd(): string {\n  return formatRetailRateUsd(NETWORK_USD_PER_MICRO);\n}\n\nexport function formatRetailRateUsd(value: number): string {\n  if (!Number.isFinite(value) || value < 0) {\n    return defaultRetailRateUsd();\n  }\n  return trimFixedDecimalZeros(value.toFixed(RETAIL_RATE_DECIMALS));\n}\n\nexport function parseRetailRateUsd(raw: string | null | undefined): string | null {\n  if (raw === null || raw === undefined) {\n    return null;\n  }\n  const trimmed = String(raw).trim();\n  if (!trimmed) {\n    return null;\n  }\n  const n = Number(trimmed);\n  if (!Number.isFinite(n) || n < 0) {\n    return null;\n  }\n  return formatRetailRateUsd(n);\n}\n\n/** Markup percent (e.g. 50 = 50%) → retail USD per network USD-micro. */\nexport function markupPercentToRetailRateUsd(markupPercent: number): string {\n  const pct = Number.isFinite(markupPercent) ? Math.max(0, markupPercent) : 0;\n  return formatRetailRateUsd(NETWORK_USD_PER_MICRO * (1 + pct / 100));\n}\n\n/** Retail USD per micro → markup percent string for UI (one decimal). */\nexport function retailRateUsdToMarkupPercent(raw: string | null | undefined): string {\n  const rate = parseRetailRateUsd(raw);\n  if (!rate) {\n    return \"\";\n  }\n  const n = Number(rate);\n  if (!Number.isFinite(n) || n <= NETWORK_USD_PER_MICRO) {\n    return n === NETWORK_USD_PER_MICRO ? \"0\" : \"\";\n  }\n  const pct = (n / NETWORK_USD_PER_MICRO - 1) * 100;\n  if (!Number.isFinite(pct) || pct <= 0) {\n    return \"\";\n  }\n  return pct % 1 === 0 ? String(Math.round(pct)) : pct.toFixed(1);\n}\n\nexport function retailRateUsdPerMillion(raw: string | null | undefined): string {\n  const rate = parseRetailRateUsd(raw);\n  if (!rate) {\n    return \"\";\n  }\n  const perM = Number(rate) * 1_000_000;\n  if (!Number.isFinite(perM)) {\n    return \"\";\n  }\n  return perM.toFixed(2);\n}\n\nexport function parseMarkupPercentInput(raw: string): number | null {\n  const trimmed = raw.trim();\n  if (!trimmed) {\n    return null;\n  }\n  const n = Number(trimmed);\n  if (!Number.isFinite(n) || n < 0) {\n    return null;\n  }\n  return n;\n}\n\n/** Apply retail rate (USD per network micro) to network fee micros. */\nexport function applyRetailRateToNetworkMicros(\n  networkFeeUsdMicros: bigint,\n  retailRateUsd: string,\n): bigint {\n  const networkPerMicro = NETWORK_USD_PER_MICRO;\n  const retail = Number(retailRateUsd);\n  if (!Number.isFinite(retail) || retail <= 0) {\n    return networkFeeUsdMicros;\n  }\n  const ratio = retail / networkPerMicro;\n  if (!Number.isFinite(ratio) || ratio <= 0) {\n    return networkFeeUsdMicros;\n  }\n  return (networkFeeUsdMicros * BigInt(Math.round(ratio * 1_000_000))) / 1_000_000n;\n}\n"]}

package/dist/plan-pricing.d.cts

@@ -0,0 +1,15 @@
+/** Network cost pass-through: $1 retail per $1M of network USD-micros metered. */
+declare const NETWORK_USD_PER_MICRO = 0.000001;
+declare function defaultRetailRateUsd(): string;
+declare function formatRetailRateUsd(value: number): string;
+declare function parseRetailRateUsd(raw: string | null | undefined): string | null;
+/** Markup percent (e.g. 50 = 50%) → retail USD per network USD-micro. */
+declare function markupPercentToRetailRateUsd(markupPercent: number): string;
+/** Retail USD per micro → markup percent string for UI (one decimal). */
+declare function retailRateUsdToMarkupPercent(raw: string | null | undefined): string;
+declare function retailRateUsdPerMillion(raw: string | null | undefined): string;
+declare function parseMarkupPercentInput(raw: string): number | null;
+/** Apply retail rate (USD per network micro) to network fee micros. */
+declare function applyRetailRateToNetworkMicros(networkFeeUsdMicros: bigint, retailRateUsd: string): bigint;
+
+export { NETWORK_USD_PER_MICRO, applyRetailRateToNetworkMicros, defaultRetailRateUsd, formatRetailRateUsd, markupPercentToRetailRateUsd, parseMarkupPercentInput, parseRetailRateUsd, retailRateUsdPerMillion, retailRateUsdToMarkupPercent };